Unauthenticated RPC clients must be restricted from connecting to the RPC server.

An XCCDF Rule

Description

Configuring RPC to restrict unauthenticated RPC clients from connecting to the RPC server will prevent anonymous connections.

ID: SV-220824r971545_rule
Version: WN10-CC-000165
Severity: Medium
References: CCI-001967
Updated: about 2 months ago

Remediation Templates

Configure the policy value for Computer Configuration >> Administrative Templates >> System >> Remote Procedure Call >> "Restrict Unauthenticated RPC clients" to "Enabled" and "Authenticated".